Back to skill
Skillv1.0.1
ClawScan security
China iFinD Skill(同花顺Skill) · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignMar 16, 2026, 7:47 AM
- Verdict
- Benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill appears to do what it says (query the iFinD/51ifind API) and its requirements match its functionality, but it requires you to provide a sensitive refresh token which will be stored locally—take care before sharing that secret.
- Guidance
- This skill is coherent for querying the iFinD API, but it requires your IFIND_REFRESH_TOKEN (a sensitive secret). Only provide that token if you trust the skill and the host. Prefer to set the token via a secure local mechanism (e.g., create ~/.openclaw/skills/ifind-api/.env yourself with restrictive permissions) rather than pasting it directly into a chat. After use, consider removing the token and cached access_token (.data/access_token) and inspect the local log (.data/ifind.log). Verify network calls go to quantapi.51ifind.com and review the script if you need higher assurance.
Review Dimensions
- Purpose & Capability
- okName/description, SKILL.md, API reference and the Python script all consistently implement calls to iFinD (quantapi.51ifind.com). The single required env var (IFIND_REFRESH_TOKEN) is exactly what the API requires. No unrelated credentials, hosts, or binaries are requested.
- Instruction Scope
- noteRuntime instructions explicitly require the refresh token, fetch an access_token from the official API, call endpoints under quantapi.51ifind.com, and log calls to a local .data directory. The SKILL.md/REFERENCE instruct the agent to stop if no token is configured and to ask the user to provide it (including a sed example to write ~/.openclaw/skills/ifind-api/.env). Asking the user to paste a secret into chat is operationally necessary but should be surfaced to users as a privacy risk.
- Install Mechanism
- okNo install spec (instruction-only plus one Python script) — nothing is downloaded from external URLs or installed system-wide. The included Python script uses only the standard library.
- Credentials
- concernThe skill requires a sensitive IFIND_REFRESH_TOKEN. The docs and code store tokens unencrypted on disk: refresh token may be written into the skill's .env (references show sed writing to ~/.openclaw/skills/ifind-api/.env) and access_token is cached in .data/access_token; logs are written to .data/ifind.log. These are reasonable for a client but are sensitive — users must trust the skill and secure the skill directory (file permissions, remove secrets when not needed). The SKILL.md explicitly asks users to paste the refresh_token into chat or write it into .env, which is a privacy concern if the user does not trust the skill or the agent.
- Persistence & Privilege
- okalways is false and the skill does not request system-wide changes or modify other skills. It persists local state within its own skill directory (.env, .data) which is normal for a client wrapper.